Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung

Plagegeister aller Art und deren Bekämpfung: TR/ATRAPS.Gen2 C:\Program Files (x86)\Google\Desktop

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

Antwort
Alt 12.11.2013, 17:21   #1
Benni-25
 
TR/ATRAPS.Gen2 C:\Program Files (x86)\Google\Desktop - Standard

TR/ATRAPS.Gen2 C:\Program Files (x86)\Google\Desktop



Bei mir meldet seit einem Tag mein Avira Free Antivirus folgenden Trojaner:
TR/ATRAPS.Gen2
im Pfad:
C:\Program Files (x86)\Google\Desktop\Install

---

Folgende Möglichkeiten habe ich bereits probiert:

1. Im Sicherheitsmodus gebootet und versucht den Ordner zu löschen.
Vergebens: Explorer.exe schmiert dabei immer ab.

2. JRT.exe drüber laufen lassen
Vergebens: hat es nicht gefunden bzw. nicht bereinigt.

3. Adwcleaner.exe drüber laufen lassen
Vergebens: hat es nicht gefunden bzw. nicht bereinigt.

4. Avira kann den Trojaner auch nicht entfernen.


Hier mein FRST 64 Bit Bericht:


FRST.txt:

Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 10-11-2013 01
Ran by Benni (administrator) on BENNI-PC on 12-11-2013 17:13:06
Running from C:\Users\Benni\Downloads
Windows 7 Ultimate Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Logitech Inc.) C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
() C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe
(Freemake) C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe
(Intel Corporation) C:\Windows\system32\IProsetMonitor.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe
() C:\Program Files (x86)\ASUS\AI Suite II\EasyUpdate\EzUpdt.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Microsoft Corporation) C:\Program Files (x86)\Windows Sidebar\sidebar.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\AI Suite II.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\Sensor\AlertHelper\AlertHelper.exe
(Google Inc.) C:\Users\Benni\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Benni\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Benni\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Benni\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Benni\AppData\Local\Google\Chrome\Application\chrome.exe
(Avira Operations GmbH & Co. KG) c:\program files (x86)\avira\antivir desktop\avscan.exe
(Google Inc.) C:\Users\Benni\AppData\Local\Google\Chrome\Application\chrome.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RTHDVCPL] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11842152 2011-05-03] (Realtek Semiconductor)
HKLM\...\Run: [HotKeysCmds] - C:\Windows\system32\hkcmd.exe [ ] ()
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKCU\...\Run: [AdobeBridge] - [x]
HKCU\...\Run: [Google Update*] - [x] <===== ATTENTION (ZeroAccess rootkit hidden path)
MountPoints2: {038ffc76-951e-11e0-b406-002618887a21} - F:\setup.exe
HKLM-x32\...\Run: [avgnt] - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [681032 2013-10-01] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [] - [x]
HKU\Schatz\...\RunOnce: [FlashPlayerUpdate] - C:\Windows\system32\Macromed\Flash\FlashUtil64_11_7_700_224_ActiveX.exe -update activex

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x0FB338FEF625CC01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de
SearchScopes: HKCU - {07E265D5-6A22-437E-A1BE-9B8E29B738FF} URL = hxxp://search.yahoo.com/search?p={searchTerms}&ei=utf-8&fr=b1ie7
BHO: Lync Browser Helper - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Recorder Toolbar - {120A8821-2BEE-4C29-BCDA-62C577781992} - C:\Program Files (x86)\MedienTeam66\MP3 Recorder for YouTube\IEPlugin.dll (MedienTeam66)
BHO-x32: Lync Browser Helper - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Windows Live ID-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Adobe Acrobat Create PDF Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Adobe Acrobat Create PDF from Selection - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Recorder Toolbar - {120A8821-2BEE-4C29-BCDA-62C577781992} - C:\Program Files (x86)\MedienTeam66\MP3 Recorder for YouTube\IEPlugin.dll (MedienTeam66)
Toolbar: HKCU - No Name - {47833539-D0C5-4125-9FA8-0819E2EAAC93} -  No File
DPF: HKLM {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
DPF: HKLM-x32 {5D6F45B3-9043-443D-A792-115447494D24} hxxp://messenger.zone.msn.com/MessengerGamesContent/GameContent/de/uno1/GAME_UNO1.cab
DPF: HKLM-x32 {C3F79A2B-B9B4-4A66-B012-3EE46475B072} hxxp://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Winsock: Catalog5 01 mswsock.dll File Not found () ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"
Winsock: Catalog5 05 mswsock.dll File Not found () ATTENTION: The LibraryPath should be "%SystemRoot%\System32\mswsock.dll"
Winsock: Catalog9 01 mswsock.dll File Not found ()
Winsock: Catalog9 02 mswsock.dll File Not found ()
Winsock: Catalog9 03 mswsock.dll File Not found ()
Winsock: Catalog9 04 mswsock.dll File Not found ()
Winsock: Catalog9 05 mswsock.dll File Not found ()
Winsock: Catalog9 06 mswsock.dll File Not found ()
Winsock: Catalog9 07 mswsock.dll File Not found ()
Winsock: Catalog9 08 mswsock.dll File Not found ()
Winsock: Catalog9 09 mswsock.dll File Not found ()
Winsock: Catalog9 10 mswsock.dll File Not found ()
Winsock: Catalog5-x64 01 mswsock.dll File Not found () ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"
Winsock: Catalog5-x64 05 mswsock.dll File Not found () ATTENTION: The LibraryPath should be "%SystemRoot%\System32\mswsock.dll"
Winsock: Catalog9-x64 01 mswsock.dll File Not found ()
Winsock: Catalog9-x64 02 mswsock.dll File Not found ()
Winsock: Catalog9-x64 03 mswsock.dll File Not found ()
Winsock: Catalog9-x64 04 mswsock.dll File Not found ()
Winsock: Catalog9-x64 05 mswsock.dll File Not found ()
Winsock: Catalog9-x64 06 mswsock.dll File Not found ()
Winsock: Catalog9-x64 07 mswsock.dll File Not found ()
Winsock: Catalog9-x64 08 mswsock.dll File Not found ()
Winsock: Catalog9-x64 09 mswsock.dll File Not found ()
Winsock: Catalog9-x64 10 mswsock.dll File Not found ()
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1

Chrome: 
=======
CHR HomePage: hxxp://www.google.com
CHR RestoreOnStartup: "hxxp://www.fcbayern.de/"
CHR DefaultSearchURL: (Ask) - hxxp://websearch.ask.com/redirect?client=cr&src=kw&tb=AVR-4&o=APN10261&locale=de_DE&apn_uid=24a58e53-760b-4ee1-bded-1918544a69d5&apn_ptnrs=%5EAGS&apn_sauid=6B441EAD-E89C-47E5-A2A0-60C64E32ACB1&apn_dtid=%5EYYYYYY%5EYY%5EDE&q={searchTerms}
CHR DefaultSuggestURL: (Ask) - hxxp://ss.websearch.ask.com/query?qsrc=2922&li=ff&sstype=prefix&q={searchTerms}
CHR Plugin: (Remoting Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Users\Benni\AppData\Local\Google\Chrome\Application\30.0.1599.101\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Users\Benni\AppData\Local\Google\Chrome\Application\30.0.1599.101\pdf.dll ()
CHR Plugin: (Shockwave Flash) - C:\Users\Benni\AppData\Local\Google\Chrome\Application\30.0.1599.101\gcswf32.dll No File
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_2_202_235.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll No File
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin2.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin3.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin4.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin5.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin6.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin7.dll (Apple Inc.)
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~3\Office14\NPAUTHZ.DLL No File
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~3\Office14\NPSPWRAP.DLL No File
CHR Plugin: (Java(TM) Platform SE 6 U31) - C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)
CHR Plugin: (NVIDIA 3D Vision) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
CHR Plugin: (NVIDIA 3D VISION) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
CHR Plugin: (iTunes Application Detector) - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
CHR Plugin: (Facebook Video Calling Plugin) - C:\Users\Benni\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
CHR Plugin: (Google Update) - C:\Users\Benni\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll No File
CHR Plugin: (Silverlight Plug-In) - c:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrl.dll No File
CHR Extension: (YouTube) - C:\Users\Benni\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Google Search) - C:\Users\Benni\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (Adobe Acrobat - Create PDF) - C:\Users\Benni\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj\11.0.3.37_0
CHR Extension: (Stealthy) - C:\Users\Benni\AppData\Local\Google\Chrome\User Data\Default\Extensions\ieaebnkibonmpbhdaanjkmedikadnoje\3.0.1_0
CHR Extension: (Google Wallet) - C:\Users\Benni\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.5.0_0
CHR Extension: (Gmail) - C:\Users\Benni\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCChromeExtn\WCChromeExtn.crx
CHR StartMenuInternet: Google Chrome - C:\Users\Benni\AppData\Local\Google\Chrome\Application\chrome.exe

==================== Services (Whitelisted) =================

R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [440392 2013-10-01] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [440392 2013-10-01] (Avira Operations GmbH & Co. KG)
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe [920736 2012-10-12] ()
R2 asHmComSvc; C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe [951936 2012-10-12] (ASUSTeK Computer Inc.)
R2 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe [149120 2012-10-12] (ASUSTeK Computer Inc.)
R2 Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [100864 2012-09-07] (Freemake)
S3 Futuremark SystemInfo Service; C:\Program Files (x86)\Common Files\Futuremark Shared\Futuremark SystemInfo\FMSISvc.exe [130976 2011-03-01] (Futuremark Corporation)
U2 *etadpug; "C:\Program Files (x86)\Google\Desktop\Install\{8cff11e2-1070-9cd2-4e23-e50a044f6249}\   \...\???\{8cff11e2-1070-9cd2-4e23-e50a044f6249}\GoogleUpdate.exe" < <==== ATTENTION (ZeroAccess)

==================== Drivers (Whitelisted) ====================

S3 AiCharger; C:\Windows\SysWow64\drivers\AiCharger.sys [14848 2012-03-22] (ASUSTek Computer Inc.)
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2012-10-12] ()
R1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [14464 2012-10-12] ()
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [105856 2013-10-01] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [132600 2013-10-01] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2013-10-01] (Avira Operations GmbH & Co. KG)
S3 cpudrv64; C:\Program Files (x86)\SystemRequirementsLab\cpudrv64.sys [17864 2009-12-18] ()
R2 cpuz135; C:\Windows\system32\drivers\cpuz135_x64.sys [21992 2011-01-19] (CPUID)
S3 ENTECH64; C:\Windows\system32\DRIVERS\ENTECH64.sys [12744 2008-04-22] (EnTech Taiwan)
S3 ESLvnic1; C:\Windows\System32\DRIVERS\ESLvnic.sys [25528 2011-08-08] (Turtle Entertainment GmbH)
R1 ISODrive; C:\Program Files (x86)\UltraISO\drivers\ISODrv64.sys [115600 2010-01-29] (EZB Systems, Inc.)
S3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [8192 2005-03-29] ()
S3 RecFltr; C:\Windows\System32\drivers\RecFltr.sys [45440 2007-01-18] ()
S3 RzSynapse; C:\Windows\System32\DRIVERS\RzSynapse.sys [166400 2011-10-11] (Razer USA Ltd)
S3 yukonw7; C:\Windows\System32\DRIVERS\yk62x64.sys [395264 2009-09-28] ()
S3 DRHARD; \??\C:\Windows\system32\DRIVERS\DRHARD.SYS [x]
S3 EverestDriver; \??\C:\Program Files (x86)\Lavalys\EVEREST Ultimate Edition\kerneld.amd64 [x]
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [x]
S3 tsusbhub; system32\drivers\tsusbhub.sys [x]
U5 UnlockerDriver5; C:\Program Files\Unlocker\UnlockerDriver5.sys [12352 2010-07-01] ()
S3 VGPU; System32\drivers\rdvgkmd.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-11-12 17:08 - 2013-11-12 17:08 - 00117591 _____ C:\Users\Benni\Desktop\JRT.txt
2013-11-12 17:05 - 2013-11-12 17:05 - 00000000 ____D C:\Windows\ERUNT
2013-11-12 16:55 - 2013-11-12 16:57 - 00000000 ____D C:\AdwCleaner
2013-11-12 16:55 - 2013-11-12 16:55 - 01256728 _____ (iMesh Inc) C:\Users\Benni\Downloads\iMeshSetup-r1487-w-bc.exe
2013-11-12 16:55 - 2013-11-12 16:55 - 01085542 _____ C:\Users\Benni\Downloads\AdwCleaner.exe
2013-11-12 16:55 - 2013-11-12 16:55 - 01034531 _____ (Thisisu) C:\Users\Benni\Downloads\JRT.exe
2013-11-12 16:55 - 2013-11-12 16:55 - 00036857 _____ C:\Users\Benni\Downloads\Addition.txt
2013-11-12 16:53 - 2013-11-12 16:53 - 01957590 _____ (Farbar) C:\Users\Benni\Downloads\FRST64.exe
2013-11-12 16:53 - 2013-11-12 16:53 - 01957590 _____ (Farbar) C:\Users\Benni\Downloads\FRST64 (1).exe
2013-11-12 16:53 - 2013-11-12 16:53 - 00000000 ____D C:\FRST
2013-11-12 16:26 - 2013-11-12 16:26 - 00388608 _____ (Trend Micro Inc.) C:\Users\Benni\Downloads\hijackthis.exe
2013-11-12 16:26 - 2013-11-12 16:26 - 00388608 _____ (Trend Micro Inc.) C:\Users\Benni\Downloads\hijackthis (1).exe
2013-11-12 16:26 - 2013-11-12 16:26 - 00013208 _____ C:\Users\Benni\Downloads\hijackthis.log
2013-11-11 19:37 - 2013-11-11 19:37 - 00000000 ____D C:\Users\Benni\Documents\BackupFiles
2013-11-11 19:27 - 2013-11-11 19:27 - 00000000 ____D C:\Users\Benni\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TARGET 3001! V16 distrelec700
2013-11-11 19:26 - 2013-11-11 19:26 - 00001248 _____ C:\Users\Public\Desktop\Target 3001! V16 distrelec700.lnk
2013-11-11 19:25 - 2013-11-11 19:25 - 51771336 _____ (Ing.-Buero FRIEDRICH) C:\Users\Benni\Downloads\Target3001_distrelec700_V16.exe
2013-11-11 19:17 - 2013-11-11 19:17 - 00001188 _____ C:\Users\Public\Desktop\Target 3001! V14 pcb-pool.lnk
2013-11-11 19:17 - 2013-11-11 19:17 - 00000955 _____ C:\Users\UpdatusUser\Desktop\ELECTRA.lnk
2013-11-11 19:17 - 2013-11-11 19:17 - 00000955 _____ C:\Users\Schatz\Desktop\ELECTRA.lnk
2013-11-11 19:17 - 2013-11-11 19:17 - 00000955 _____ C:\Users\Benni\Desktop\ELECTRA.lnk
2013-11-11 19:17 - 2013-11-11 19:17 - 00000000 ____D C:\ProgramData\c5iHwGMl0CASslpYx
2013-11-11 19:16 - 2013-11-11 19:16 - 22770309 _____ C:\Users\Benni\Downloads\target3001_pcb_pool_edition_v14_de.zip
2013-11-11 19:14 - 2013-11-11 19:14 - 00000000 ____D C:\Users\Benni\AppData\Roaming\Comical
2013-11-11 19:13 - 2013-11-11 19:13 - 01015983 _____ C:\Users\Benni\Downloads\612765target3001v16professionalcrack.exe
2013-11-11 19:06 - 2013-11-11 19:06 - 00000016 _____ C:\Users\Benni\Desktop\Heiko.Preter.T3001OPEN
2013-11-11 19:05 - 2013-11-11 19:05 - 00000016 _____ C:\Users\Benni\Desktop\Heiko.Preter.T3000OPEN
2013-11-11 18:59 - 2013-11-11 18:59 - 00049408 _____ C:\Users\Benni\Documents\Heiko Preter.T3001
2013-11-11 18:59 - 2013-11-11 18:59 - 00049408 _____ C:\Users\Benni\Desktop\Heiko.Preter.T3001
2013-11-11 18:58 - 2013-11-11 19:26 - 00000955 _____ C:\Users\UpdatusUser\Desktop\ELECTRA_250.lnk
2013-11-11 18:58 - 2013-11-11 19:26 - 00000955 _____ C:\Users\Schatz\Desktop\ELECTRA_250.lnk
2013-11-11 18:58 - 2013-11-11 19:26 - 00000955 _____ C:\Users\Benni\Desktop\ELECTRA_250.lnk
2013-11-11 18:58 - 2013-11-11 19:26 - 00000000 ____D C:\Program Files (x86)\ELECTRA_250
2013-11-11 18:58 - 2013-11-11 19:18 - 00000000 ____D C:\Users\Benni\AppData\Roaming\ibf
2013-11-11 18:58 - 2013-11-11 18:58 - 00000000 ____D C:\ProgramData\CP70vxDj0
2013-11-11 18:57 - 2013-11-11 19:26 - 00000000 ____D C:\Program Files (x86)\ibf
2013-11-11 00:06 - 2013-11-11 00:06 - 00013168 _____ C:\Users\Benni\Downloads\3hpuq1ar8682w4o.dlc
2013-11-10 14:14 - 2013-11-10 14:22 - 00000000 ____D C:\Users\Benni\Documents\YouTube Recordings
2013-11-10 14:14 - 2013-11-10 14:14 - 00000000 ____D C:\Users\Benni\AppData\Local\MedienTeam66
2013-11-10 14:13 - 2013-11-11 14:13 - 00000314 _____ C:\Windows\Tasks\MT66 Software Update.job
2013-11-10 14:13 - 2013-11-10 14:13 - 00002908 _____ C:\Windows\System32\Tasks\MT66 Software Update
2013-11-10 14:13 - 2013-11-10 14:13 - 00001240 _____ C:\Users\Public\Desktop\MP3 Recorder for YouTube.lnk
2013-11-10 14:13 - 2013-11-10 14:13 - 00000000 ____D C:\Program Files (x86)\MedienTeam66
2013-11-10 14:12 - 2013-11-10 14:12 - 10061792 _____ (MedienTeam66 Verlags GmbH                                   ) C:\Users\Benni\Downloads\CHIP_MP3_Recorder_for_YouTube_125.exe
2013-11-09 20:06 - 2013-11-09 20:06 - 11923854 _____ C:\Users\Benni\Downloads\etl_1.bmp
2013-11-09 17:42 - 2013-11-09 17:42 - 11923854 _____ C:\Users\Benni\Downloads\P&D_1.bmp
2013-11-08 21:29 - 2013-11-08 21:32 - 229594432 _____ (NVIDIA Corporation) C:\Users\Benni\Downloads\320.49-desktop-win8-win7-winvista-64bit-international-whql.exe
2013-11-07 17:54 - 2013-11-07 17:54 - 00003140 _____ C:\Users\Benni\Downloads\3e3c07b572c4ceb47439800aef93f42b.dlc
2013-11-07 17:40 - 2013-11-07 17:40 - 00007428 _____ C:\Users\Benni\Downloads\a28efa125e988a301cae8eb9c16ff9e1.dlc
2013-11-07 17:25 - 2013-11-07 17:25 - 00024496 _____ C:\Users\Benni\Downloads\29k73fu4849a688.dlc
2013-11-06 21:17 - 2013-11-06 21:17 - 00020480 _____ C:\Users\Benni\Downloads\Grund-und-Gesamtumsatz-Berechnung-GesundePfunde.com_1.xls
2013-11-05 20:32 - 2013-11-05 20:32 - 00000000 ____D C:\Users\Benni\Documents\NeroVideo
2013-11-05 19:03 - 2013-11-05 19:03 - 00001070 _____ C:\Users\Public\Desktop\VLC media player.lnk
2013-11-05 18:42 - 2013-11-05 18:42 - 00001090 _____ C:\Users\Public\Desktop\TeamViewer 8.lnk
2013-11-05 18:38 - 2013-11-05 18:38 - 05831344 _____ (TeamViewer GmbH) C:\Users\Benni\Downloads\TeamViewer_Setup_de_8.0.22298.exe
2013-11-04 23:19 - 2013-11-04 23:19 - 00537140 _____ C:\Users\Benni\Downloads\video.hd (1).zip
2013-11-04 19:23 - 2013-11-04 19:23 - 00012400 _____ C:\Users\Benni\Downloads\1b03ae7d391b51e85a591be1826f7865.dlc
2013-11-03 19:57 - 2013-11-03 19:57 - 00128318 _____ C:\Users\Benni\Desktop\52be364c34ff3e4a7b7c1ddff91243720b8f61c8e2179c4f77d7125c64ed9b071137a549ad819da7ab0ff383b0cf2ddc_fler_header.jpg-
2013-11-03 17:31 - 2013-11-03 17:31 - 00000000 ____D C:\ProgramData\Oracle
2013-11-03 17:31 - 2013-10-08 07:50 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2013-11-03 17:31 - 2013-10-08 07:46 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2013-11-03 17:31 - 2013-10-08 07:46 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2013-11-03 17:31 - 2013-10-08 07:46 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2013-11-03 17:30 - 2013-11-03 17:31 - 00004886 _____ C:\Windows\SysWOW64\jupdate-1.7.0_45-b18.log
2013-11-03 17:29 - 2013-11-03 17:29 - 00915368 _____ (Oracle Corporation) C:\Users\Benni\Downloads\chromeinstall-7u45 (1).exe
2013-11-01 13:46 - 2013-11-01 13:52 - 107520000 _____ C:\Users\Benni\Downloads\White1080BDPS.part02.rar
2013-11-01 12:22 - 2013-11-01 12:22 - 00024048 _____ C:\Users\Benni\Downloads\1fc4f0aff8e06ed6887843888e30e832.dlc
2013-11-01 12:17 - 2013-11-01 12:17 - 00027224 _____ C:\Users\Benni\Downloads\91db376eb8bc263e96bd5fe280e0f892.dlc
2013-11-01 12:12 - 2013-11-01 12:12 - 00023320 _____ C:\Users\Benni\Downloads\e37c5d6186ced68d973aebe3d0fbc21a.dlc
2013-11-01 12:02 - 2013-11-01 12:02 - 00038916 _____ C:\Users\Benni\Downloads\Man.of.Steel.2013.3D.H-OU.German.DL.1080p.BluRay.x264-LeetHD-xsr4uumqhej0.dlc
2013-11-01 11:59 - 2013-11-01 11:59 - 00018736 _____ C:\Users\Benni\Downloads\f039e2d75a64dc4edf7235c686e15a96.dlc
2013-10-31 23:40 - 2013-10-31 23:40 - 01170152 _____ C:\Users\Benni\Downloads\wallpaper02.zip
2013-10-26 11:51 - 2013-10-26 11:51 - 00001304 _____ C:\Users\Benni\Downloads\x8952b8fy1e7t04.dlc
2013-10-26 11:33 - 2013-10-26 11:33 - 00004912 _____ C:\Users\Benni\Downloads\844416980d83df92b2f1251186ce1ae4.dlc
2013-10-26 11:26 - 2013-10-26 11:26 - 00003012 _____ C:\Users\Benni\Downloads\fee6f24de1037d4627d0ee830d6743a2.dlc
2013-10-25 11:47 - 2013-10-25 11:47 - 00001112 _____ C:\Users\Benni\Downloads\zhtq0704y6r663x.dlc
2013-10-24 21:08 - 2013-11-12 17:13 - 00001108 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-10-24 21:08 - 2013-11-12 17:03 - 00001104 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-10-24 21:08 - 2013-11-11 19:19 - 00000000 ____D C:\Program Files (x86)\Google
2013-10-24 21:08 - 2013-10-24 21:08 - 00819160 _____ (Google Inc.) C:\Users\Benni\Downloads\GoogleEarthPluginSetup.exe
2013-10-24 21:08 - 2013-10-24 21:08 - 00004104 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2013-10-24 21:08 - 2013-10-24 21:08 - 00003852 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2013-10-23 22:39 - 2013-10-23 22:39 - 00128705 _____ C:\Users\Benni\Downloads\video.hd.zip
2013-10-23 14:46 - 2013-10-23 14:46 - 00002560 _____ C:\Windows\_MSRSTRT.EXE
2013-10-23 14:37 - 2013-10-23 14:37 - 01459005 _____ C:\Users\Benni\Downloads\kmpro.zip
2013-10-23 14:32 - 2013-10-23 14:38 - 00000000 ____D C:\Program Files (x86)\ShurikSoft
2013-10-23 14:32 - 2013-10-23 14:32 - 01377969 _____ C:\Users\Benni\Downloads\kmin.zip
2013-10-23 14:32 - 2013-10-23 14:32 - 00001218 _____ C:\Users\Public\Desktop\Karnaugh Minimizer.lnk
2013-10-23 14:32 - 2013-10-23 14:32 - 00000000 ____D C:\Users\Benni\AppData\Roaming\ShurikSoft
2013-10-20 21:40 - 2013-10-20 21:40 - 00915368 _____ (Oracle Corporation) C:\Users\Benni\Downloads\chromeinstall-7u45.exe
2013-10-20 21:34 - 2013-10-20 21:34 - 00759119 _____ C:\Users\Benni\Downloads\qmcb.ZIP
2013-10-20 21:33 - 2013-10-20 21:33 - 00608608 _____ C:\Users\Benni\Downloads\qmca.zip
2013-10-20 21:28 - 2013-10-20 21:28 - 06988468 _____ C:\Users\Benni\Downloads\e2.zip
2013-10-20 21:28 - 2007-11-05 17:47 - 00000000 ____D C:\Users\Benni\Desktop\e2
2013-10-20 21:00 - 2009-02-09 15:49 - 00000000 ____D C:\Users\Benni\Desktop\LogiFlashv3.03
2013-10-20 20:59 - 2013-10-20 20:59 - 00625843 _____ C:\Users\Benni\Downloads\LogiFlashv3.03.zip
2013-10-20 12:59 - 2013-10-20 13:56 - 00000000 ____D C:\Users\Benni\Downloads\Hardwell - Hardwell Presents Revealed, Vol. 4 (iTunes Version) (2013)
2013-10-20 12:47 - 2013-10-20 12:47 - 00001112 _____ C:\Users\Benni\Downloads\HaRPrEREvV4iTunesV2013.rar-xfesttmocblih.dlc
2013-10-17 22:12 - 2013-10-17 22:12 - 00049572 _____ C:\Users\Benni\Downloads\movie1080p.mkv (1).zip
2013-10-15 19:34 - 2013-10-15 19:34 - 05895980 _____ C:\Users\Benni\Downloads\FTE1.zip

==================== One Month Modified Files and Folders =======

2013-11-12 17:13 - 2013-10-24 21:08 - 00001108 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-11-12 17:09 - 2013-02-22 16:47 - 00001120 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1059843508-2583915627-1179725745-1000UA.job
2013-11-12 17:09 - 2009-07-14 05:45 - 00021392 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-11-12 17:09 - 2009-07-14 05:45 - 00021392 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-11-12 17:08 - 2013-11-12 17:08 - 00117591 _____ C:\Users\Benni\Desktop\JRT.txt
2013-11-12 17:05 - 2013-11-12 17:05 - 00000000 ____D C:\Windows\ERUNT
2013-11-12 17:03 - 2013-10-24 21:08 - 00001104 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-11-12 17:02 - 2009-07-14 18:58 - 00668576 _____ C:\Windows\system32\perfh007.dat
2013-11-12 17:02 - 2009-07-14 18:58 - 00134424 _____ C:\Windows\system32\perfc007.dat
2013-11-12 17:02 - 2009-07-14 06:13 - 01525958 _____ C:\Windows\system32\PerfStringBackup.INI
2013-11-12 16:58 - 2011-06-08 18:16 - 00000000 ____D C:\ProgramData\NVIDIA
2013-11-12 16:58 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-11-12 16:58 - 2009-07-14 05:51 - 00020164 _____ C:\Windows\setupact.log
2013-11-12 16:57 - 2013-11-12 16:55 - 00000000 ____D C:\AdwCleaner
2013-11-12 16:57 - 2012-08-12 10:32 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-11-12 16:56 - 2011-06-11 15:00 - 00000000 ____D C:\Users\Benni\Documents\Outlook-Dateien
2013-11-12 16:55 - 2013-11-12 16:55 - 01256728 _____ (iMesh Inc) C:\Users\Benni\Downloads\iMeshSetup-r1487-w-bc.exe
2013-11-12 16:55 - 2013-11-12 16:55 - 01085542 _____ C:\Users\Benni\Downloads\AdwCleaner.exe
2013-11-12 16:55 - 2013-11-12 16:55 - 01034531 _____ (Thisisu) C:\Users\Benni\Downloads\JRT.exe
2013-11-12 16:55 - 2013-11-12 16:55 - 00036857 _____ C:\Users\Benni\Downloads\Addition.txt
2013-11-12 16:53 - 2013-11-12 16:53 - 01957590 _____ (Farbar) C:\Users\Benni\Downloads\FRST64.exe
2013-11-12 16:53 - 2013-11-12 16:53 - 01957590 _____ (Farbar) C:\Users\Benni\Downloads\FRST64 (1).exe
2013-11-12 16:53 - 2013-11-12 16:53 - 00000000 ____D C:\FRST
2013-11-12 16:36 - 2011-06-08 17:05 - 01286756 _____ C:\Windows\WindowsUpdate.log
2013-11-12 16:26 - 2013-11-12 16:26 - 00388608 _____ (Trend Micro Inc.) C:\Users\Benni\Downloads\hijackthis.exe
2013-11-12 16:26 - 2013-11-12 16:26 - 00388608 _____ (Trend Micro Inc.) C:\Users\Benni\Downloads\hijackthis (1).exe
2013-11-12 16:26 - 2013-11-12 16:26 - 00013208 _____ C:\Users\Benni\Downloads\hijackthis.log
2013-11-12 16:25 - 2013-01-13 12:15 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-11-12 15:43 - 2011-06-09 23:40 - 00124586 _____ C:\Windows\PFRO.log
2013-11-11 22:33 - 2012-03-26 20:29 - 00000000 ____D C:\Users\Benni\AppData\Roaming\Skype
2013-11-11 19:37 - 2013-11-11 19:37 - 00000000 ____D C:\Users\Benni\Documents\BackupFiles
2013-11-11 19:27 - 2013-11-11 19:27 - 00000000 ____D C:\Users\Benni\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TARGET 3001! V16 distrelec700
2013-11-11 19:26 - 2013-11-11 19:26 - 00001248 _____ C:\Users\Public\Desktop\Target 3001! V16 distrelec700.lnk
2013-11-11 19:26 - 2013-11-11 18:58 - 00000955 _____ C:\Users\UpdatusUser\Desktop\ELECTRA_250.lnk
2013-11-11 19:26 - 2013-11-11 18:58 - 00000955 _____ C:\Users\Schatz\Desktop\ELECTRA_250.lnk
2013-11-11 19:26 - 2013-11-11 18:58 - 00000955 _____ C:\Users\Benni\Desktop\ELECTRA_250.lnk
2013-11-11 19:26 - 2013-11-11 18:58 - 00000000 ____D C:\Program Files (x86)\ELECTRA_250
2013-11-11 19:26 - 2013-11-11 18:57 - 00000000 ____D C:\Program Files (x86)\ibf
2013-11-11 19:25 - 2013-11-11 19:25 - 51771336 _____ (Ing.-Buero FRIEDRICH) C:\Users\Benni\Downloads\Target3001_distrelec700_V16.exe
2013-11-11 19:19 - 2013-10-24 21:08 - 00000000 ____D C:\Program Files (x86)\Google
2013-11-11 19:19 - 2011-06-08 17:17 - 00000000 ____D C:\Users\Benni\AppData\Local\Google
2013-11-11 19:18 - 2013-11-11 18:58 - 00000000 ____D C:\Users\Benni\AppData\Roaming\ibf
2013-11-11 19:17 - 2013-11-11 19:17 - 00001188 _____ C:\Users\Public\Desktop\Target 3001! V14 pcb-pool.lnk
2013-11-11 19:17 - 2013-11-11 19:17 - 00000955 _____ C:\Users\UpdatusUser\Desktop\ELECTRA.lnk
2013-11-11 19:17 - 2013-11-11 19:17 - 00000955 _____ C:\Users\Schatz\Desktop\ELECTRA.lnk
2013-11-11 19:17 - 2013-11-11 19:17 - 00000955 _____ C:\Users\Benni\Desktop\ELECTRA.lnk
2013-11-11 19:17 - 2013-11-11 19:17 - 00000000 ____D C:\ProgramData\c5iHwGMl0CASslpYx
2013-11-11 19:16 - 2013-11-11 19:16 - 22770309 _____ C:\Users\Benni\Downloads\target3001_pcb_pool_edition_v14_de.zip
2013-11-11 19:14 - 2013-11-11 19:14 - 00000000 ____D C:\Users\Benni\AppData\Roaming\Comical
2013-11-11 19:13 - 2013-11-11 19:13 - 01015983 _____ C:\Users\Benni\Downloads\612765target3001v16professionalcrack.exe
2013-11-11 19:06 - 2013-11-11 19:06 - 00000016 _____ C:\Users\Benni\Desktop\Heiko.Preter.T3001OPEN
2013-11-11 19:05 - 2013-11-11 19:05 - 00000016 _____ C:\Users\Benni\Desktop\Heiko.Preter.T3000OPEN
2013-11-11 18:59 - 2013-11-11 18:59 - 00049408 _____ C:\Users\Benni\Documents\Heiko Preter.T3001
2013-11-11 18:59 - 2013-11-11 18:59 - 00049408 _____ C:\Users\Benni\Desktop\Heiko.Preter.T3001
2013-11-11 18:58 - 2013-11-11 18:58 - 00000000 ____D C:\ProgramData\CP70vxDj0
2013-11-11 14:13 - 2013-11-10 14:13 - 00000314 _____ C:\Windows\Tasks\MT66 Software Update.job
2013-11-11 13:09 - 2013-02-22 16:47 - 00001068 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1059843508-2583915627-1179725745-1000Core.job
2013-11-11 07:51 - 2011-06-09 22:43 - 00000000 ____D C:\Users\Benni\Downloads\DL
2013-11-11 00:06 - 2013-11-11 00:06 - 00013168 _____ C:\Users\Benni\Downloads\3hpuq1ar8682w4o.dlc
2013-11-10 14:22 - 2013-11-10 14:14 - 00000000 ____D C:\Users\Benni\Documents\YouTube Recordings
2013-11-10 14:14 - 2013-11-10 14:14 - 00000000 ____D C:\Users\Benni\AppData\Local\MedienTeam66
2013-11-10 14:13 - 2013-11-10 14:13 - 00002908 _____ C:\Windows\System32\Tasks\MT66 Software Update
2013-11-10 14:13 - 2013-11-10 14:13 - 00001240 _____ C:\Users\Public\Desktop\MP3 Recorder for YouTube.lnk
2013-11-10 14:13 - 2013-11-10 14:13 - 00000000 ____D C:\Program Files (x86)\MedienTeam66
2013-11-10 14:12 - 2013-11-10 14:12 - 10061792 _____ (MedienTeam66 Verlags GmbH                                   ) C:\Users\Benni\Downloads\CHIP_MP3_Recorder_for_YouTube_125.exe
2013-11-09 20:06 - 2013-11-09 20:06 - 11923854 _____ C:\Users\Benni\Downloads\etl_1.bmp
2013-11-09 17:42 - 2013-11-09 17:42 - 11923854 _____ C:\Users\Benni\Downloads\P&D_1.bmp
2013-11-08 21:32 - 2013-11-08 21:29 - 229594432 _____ (NVIDIA Corporation) C:\Users\Benni\Downloads\320.49-desktop-win8-win7-winvista-64bit-international-whql.exe
2013-11-08 20:44 - 2013-01-30 21:06 - 00000000 ____D C:\Users\Benni\AppData\Roaming\vlc
2013-11-07 17:54 - 2013-11-07 17:54 - 00003140 _____ C:\Users\Benni\Downloads\3e3c07b572c4ceb47439800aef93f42b.dlc
2013-11-07 17:40 - 2013-11-07 17:40 - 00007428 _____ C:\Users\Benni\Downloads\a28efa125e988a301cae8eb9c16ff9e1.dlc
2013-11-07 17:25 - 2013-11-07 17:25 - 00024496 _____ C:\Users\Benni\Downloads\29k73fu4849a688.dlc
2013-11-06 21:17 - 2013-11-06 21:17 - 00020480 _____ C:\Users\Benni\Downloads\Grund-und-Gesamtumsatz-Berechnung-GesundePfunde.com_1.xls
2013-11-05 23:06 - 2012-08-17 15:15 - 00000000 ____D C:\Users\Benni\AppData\Roaming\TeamViewer
2013-11-05 23:01 - 2013-02-21 20:48 - 00000000 ___RD C:\Program Files (x86)\Skype
2013-11-05 23:01 - 2012-03-26 20:29 - 00000000 ____D C:\ProgramData\Skype
2013-11-05 21:32 - 2009-07-14 05:45 - 05060912 _____ C:\Windows\system32\FNTCACHE.DAT
2013-11-05 20:33 - 2011-06-08 17:17 - 00112792 _____ C:\Users\Benni\AppData\Local\GDIPFONTCACHEV1.DAT
2013-11-05 20:32 - 2013-11-05 20:32 - 00000000 ____D C:\Users\Benni\Documents\NeroVideo
2013-11-05 20:32 - 2013-06-07 20:35 - 00000000 ____D C:\Users\Benni\AppData\Local\Nero
2013-11-05 20:32 - 2013-06-07 20:04 - 00000000 ____D C:\ProgramData\Nero
2013-11-05 20:27 - 2013-06-07 20:39 - 00000000 ____D C:\Users\Benni\AppData\Roaming\Nero
2013-11-05 19:03 - 2013-11-05 19:03 - 00001070 _____ C:\Users\Public\Desktop\VLC media player.lnk
2013-11-05 18:42 - 2013-11-05 18:42 - 00001090 _____ C:\Users\Public\Desktop\TeamViewer 8.lnk
2013-11-05 18:42 - 2012-08-17 15:10 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2013-11-05 18:38 - 2013-11-05 18:38 - 05831344 _____ (TeamViewer GmbH) C:\Users\Benni\Downloads\TeamViewer_Setup_de_8.0.22298.exe
2013-11-04 23:19 - 2013-11-04 23:19 - 00537140 _____ C:\Users\Benni\Downloads\video.hd (1).zip
2013-11-04 19:23 - 2013-11-04 19:23 - 00012400 _____ C:\Users\Benni\Downloads\1b03ae7d391b51e85a591be1826f7865.dlc
2013-11-03 19:57 - 2013-11-03 19:57 - 00128318 _____ C:\Users\Benni\Desktop\52be364c34ff3e4a7b7c1ddff91243720b8f61c8e2179c4f77d7125c64ed9b071137a549ad819da7ab0ff383b0cf2ddc_fler_header.jpg-
2013-11-03 17:31 - 2013-11-03 17:31 - 00000000 ____D C:\ProgramData\Oracle
2013-11-03 17:31 - 2013-11-03 17:30 - 00004886 _____ C:\Windows\SysWOW64\jupdate-1.7.0_45-b18.log
2013-11-03 17:31 - 2011-06-18 16:14 - 00000000 ____D C:\Program Files (x86)\Java
2013-11-03 17:29 - 2013-11-03 17:29 - 00915368 _____ (Oracle Corporation) C:\Users\Benni\Downloads\chromeinstall-7u45 (1).exe
2013-11-01 13:52 - 2013-11-01 13:46 - 107520000 _____ C:\Users\Benni\Downloads\White1080BDPS.part02.rar
2013-11-01 12:22 - 2013-11-01 12:22 - 00024048 _____ C:\Users\Benni\Downloads\1fc4f0aff8e06ed6887843888e30e832.dlc
2013-11-01 12:17 - 2013-11-01 12:17 - 00027224 _____ C:\Users\Benni\Downloads\91db376eb8bc263e96bd5fe280e0f892.dlc
2013-11-01 12:12 - 2013-11-01 12:12 - 00023320 _____ C:\Users\Benni\Downloads\e37c5d6186ced68d973aebe3d0fbc21a.dlc
2013-11-01 12:02 - 2013-11-01 12:02 - 00038916 _____ C:\Users\Benni\Downloads\Man.of.Steel.2013.3D.H-OU.German.DL.1080p.BluRay.x264-LeetHD-xsr4uumqhej0.dlc
2013-11-01 12:00 - 2012-12-08 15:23 - 00000000 ____D C:\Program Files (x86)\JDownloader
2013-11-01 11:59 - 2013-11-01 11:59 - 00018736 _____ C:\Users\Benni\Downloads\f039e2d75a64dc4edf7235c686e15a96.dlc
2013-10-31 23:40 - 2013-10-31 23:40 - 01170152 _____ C:\Users\Benni\Downloads\wallpaper02.zip
2013-10-29 19:21 - 2011-06-08 17:49 - 00000000 ____D C:\Users\Benni\Documents\Lohnübersicht
2013-10-29 10:28 - 2013-05-09 21:31 - 00001456 _____ C:\Users\Benni\AppData\Local\Adobe Für Web speichern 13.0 Prefs
2013-10-29 10:28 - 2013-05-08 13:46 - 00000000 ____D C:\Users\Benni\Documents\miasankonstanz
2013-10-26 11:51 - 2013-10-26 11:51 - 00001304 _____ C:\Users\Benni\Downloads\x8952b8fy1e7t04.dlc
2013-10-26 11:33 - 2013-10-26 11:33 - 00004912 _____ C:\Users\Benni\Downloads\844416980d83df92b2f1251186ce1ae4.dlc
2013-10-26 11:26 - 2013-10-26 11:26 - 00003012 _____ C:\Users\Benni\Downloads\fee6f24de1037d4627d0ee830d6743a2.dlc
2013-10-25 11:47 - 2013-10-25 11:47 - 00001112 _____ C:\Users\Benni\Downloads\zhtq0704y6r663x.dlc
2013-10-24 21:08 - 2013-10-24 21:08 - 00819160 _____ (Google Inc.) C:\Users\Benni\Downloads\GoogleEarthPluginSetup.exe
2013-10-24 21:08 - 2013-10-24 21:08 - 00004104 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2013-10-24 21:08 - 2013-10-24 21:08 - 00003852 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2013-10-23 22:39 - 2013-10-23 22:39 - 00128705 _____ C:\Users\Benni\Downloads\video.hd.zip
2013-10-23 14:46 - 2013-10-23 14:46 - 00002560 _____ C:\Windows\_MSRSTRT.EXE
2013-10-23 14:38 - 2013-10-23 14:32 - 00000000 ____D C:\Program Files (x86)\ShurikSoft
2013-10-23 14:37 - 2013-10-23 14:37 - 01459005 _____ C:\Users\Benni\Downloads\kmpro.zip
2013-10-23 14:32 - 2013-10-23 14:32 - 01377969 _____ C:\Users\Benni\Downloads\kmin.zip
2013-10-23 14:32 - 2013-10-23 14:32 - 00001218 _____ C:\Users\Public\Desktop\Karnaugh Minimizer.lnk
2013-10-23 14:32 - 2013-10-23 14:32 - 00000000 ____D C:\Users\Benni\AppData\Roaming\ShurikSoft
2013-10-20 21:40 - 2013-10-20 21:40 - 00915368 _____ (Oracle Corporation) C:\Users\Benni\Downloads\chromeinstall-7u45.exe
2013-10-20 21:34 - 2013-10-20 21:34 - 00759119 _____ C:\Users\Benni\Downloads\qmcb.ZIP
2013-10-20 21:33 - 2013-10-20 21:33 - 00608608 _____ C:\Users\Benni\Downloads\qmca.zip
2013-10-20 21:28 - 2013-10-20 21:28 - 06988468 _____ C:\Users\Benni\Downloads\e2.zip
2013-10-20 20:59 - 2013-10-20 20:59 - 00625843 _____ C:\Users\Benni\Downloads\LogiFlashv3.03.zip
2013-10-20 13:56 - 2013-10-20 12:59 - 00000000 ____D C:\Users\Benni\Downloads\Hardwell - Hardwell Presents Revealed, Vol. 4 (iTunes Version) (2013)
2013-10-20 12:47 - 2013-10-20 12:47 - 00001112 _____ C:\Users\Benni\Downloads\HaRPrEREvV4iTunesV2013.rar-xfesttmocblih.dlc
2013-10-18 19:59 - 2011-06-12 20:31 - 00000000 ____D C:\Spiele
2013-10-18 12:04 - 2013-02-22 16:47 - 00004090 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1059843508-2583915627-1179725745-1000UA
2013-10-18 12:04 - 2013-02-22 16:47 - 00003694 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1059843508-2583915627-1179725745-1000Core
2013-10-17 22:12 - 2013-10-17 22:12 - 00049572 _____ C:\Users\Benni\Downloads\movie1080p.mkv (1).zip
2013-10-15 19:34 - 2013-10-15 19:34 - 05895980 _____ C:\Users\Benni\Downloads\FTE1.zip
2013-10-15 17:49 - 2011-06-08 17:48 - 01253376 ___SH C:\Users\Benni\Documents\Thumbs.db

ZeroAccess:
C:\Windows\assembly\GAC_32\Desktop.ini

ZeroAccess:
C:\Windows\assembly\GAC_64\Desktop.ini

Files to move or delete:
====================
ZeroAccess:
C:\Users\Benni\AppData\Local\Google\Desktop\Install
ZeroAccess:
C:\Program Files (x86)\Google\Desktop\Install


Some content of TEMP:
====================
C:\Users\Benni\AppData\Local\Temp\612765target3001v16professionalcrack Downloader.exe
C:\Users\Benni\AppData\Local\Temp\AskSLib.dll
C:\Users\Benni\AppData\Local\Temp\avgnt.exe
C:\Users\Benni\AppData\Local\Temp\drm_dialogs.dll
C:\Users\Benni\AppData\Local\Temp\FreemakeVideoConverter_3.1.2.0.exe
C:\Users\Benni\AppData\Local\Temp\InstallFlashPlayer.exe
C:\Users\Benni\AppData\Local\Temp\install_flashplayer11x32axau_mssd_aih.exe
C:\Users\Benni\AppData\Local\Temp\jna1190926394268926327.dll
C:\Users\Benni\AppData\Local\Temp\jna2737671886387818569.dll
C:\Users\Benni\AppData\Local\Temp\jna3550651081736034376.dll
C:\Users\Benni\AppData\Local\Temp\jna8811602426913125809.dll
C:\Users\Benni\AppData\Local\Temp\mgsqlite3.dll
C:\Users\Benni\AppData\Local\Temp\nvSCPAPI.dll
C:\Users\Benni\AppData\Local\Temp\nvStInst.exe
C:\Users\Benni\AppData\Local\Temp\ose00000.exe
C:\Users\Benni\AppData\Local\Temp\ose00001.exe
C:\Users\Benni\AppData\Local\Temp\Quarantine.exe
C:\Users\Benni\AppData\Local\Temp\rootsupd.exe
C:\Users\Benni\AppData\Local\Temp\Shortcut_bundlesweetimsetup.exe
C:\Users\Benni\AppData\Local\Temp\SIMEEI2Installer.exe
C:\Users\Benni\AppData\Local\Temp\SIMEEIInstaller.exe
C:\Users\Benni\AppData\Local\Temp\SkypeSetup.exe
C:\Users\Benni\AppData\Local\Temp\vlc-2.0.8-win32.exe
C:\Users\Benni\AppData\Local\Temp\xmlUpdater.exe
C:\Users\Benni\AppData\Local\Temp\_isB5A3.exe
C:\Users\Benni\AppData\Local\Temp\_isFCA6.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
C:\Program Files\Windows Defender\mpsvc.dll => ATTENTION: ZeroAccess. Use DeleteJunctionsIndirectory: C:\Program Files\Windows Defender


LastRegBack: 2013-11-10 15:11

==================== End Of Log ============================
         


Addition.txt:

Code:
ATTFilter
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 10-11-2013 01
Ran by Benni at 2013-11-12 16:55:15
Running from C:\Users\Benni\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: Avira Desktop (Enabled - Up to date) {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
AS: Avira Desktop (Enabled - Up to date) {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

3DMark Vantage (x32 Version: 1.1.0)
Adobe Acrobat XI Pro (x32 Version: 11.0.03)
Adobe AIR (x32 Version: 3.1.0.4880)
Adobe Dreamweaver CS6 (x32 Version: 12)
Adobe Flash Player 11 ActiveX (x32 Version: 11.9.900.117)
Adobe Flash Player 11 Plugin (x32 Version: 11.9.900.117)
Adobe Help Manager (x32 Version: 4.0.244)
Adobe Illustrator CS6 (x32 Version: 16.0)
Adobe Photoshop CS6 (x32 Version: 13.0)
Adobe Reader XI (11.0.05) - Deutsch (x32 Version: 11.0.05)
Adobe Widget Browser (x32 Version: 2.0 Build 348)
Adobe Widget Browser (x32 Version: 2.0.348)
AI Suite II (x32 Version: 2.01.01)
AIDA64 Extreme Edition v1.80 (x32 Version: 1.80)
ASUSUpdate (x32)
Avira Free Antivirus (x32 Version: 14.0.0.383)
Call of Duty Modern Warfare 3 Version v1.0 (x32 Version: v1.0)
Canon IJ Scan Utility (x32)
Canon MG3200 series MP Drivers (Version: 1.02)
Canon MG3200 series On-screen Manual (x32 Version: 7.5.0)
C-Control Pro 2.12.0.10 (x32)
CloneDVD2 (x32 Version: 2.9.3.0)
Comical 0.8 (HKCU)
ConvertXtoDVD 4.1.19.365 (x32 Version: 4.1.19.365)
Core Temp 1.0 RC5 (Version: 1.0)
Counter-Strike: Global Offensive (x32)
CPUID ROG CPU-Z 1.57.2 (Version: 1.57.2)
D3DX10 (x32 Version: 15.4.2368.0902)
Definition Update for Microsoft Office 2013 (KB2760587) 64-Bit Edition
ELECTRA 2.9.5 (x32)
Facebook Video Calling 1.2.0.287 (x32 Version: 1.2.287)
FIFA 12 (x32 Version: 1.0.0.0)
FileZilla Client 3.7.3 (x32 Version: 3.7.3)
Fraps (x32)
Freemake Video Converter Version 3.1.2 (x32 Version: 3.1.2)
FrostWire 5.3.3 (x32 Version: 5.3.3.0)
FUSSBALL MANAGER 13 (x32 Version: 1.0.0.0)
Futuremark SystemInfo (x32 Version: 4.0.0.0)
Geeks3D.com FurMark 1.9.1 (x32)
Geheimakte 3 (x32 Version: 1.00)
Google Chrome (HKCU Version: 30.0.1599.101)
Google Earth Plug-in (x32 Version: 7.1.1.1888)
Google Update Helper (x32 Version: 1.3.21.165)
ICQ 8.0 (build 6019) (HKCU Version: 8.0.6019.0)
ImgBurn (x32 Version: 2.5.5.0)
Intel(R) Management Engine Components (x32 Version: 7.0.0.1144)
Intel(R) Network Connections 16.1.53.0 (Version: 16.1.53.0)
Intel(R) Processor Graphics (x32 Version: 9.17.10.2932)
iTunes (Version: 10.6.1.7)
Java 7 Update 21 (64-bit) (Version: 7.0.210)
Java 7 Update 45 (x32 Version: 7.0.450)
Java Auto Updater (x32 Version: 2.1.9.8)
Java(TM) 6 Update 31 (x32 Version: 6.0.310)
JavaFX 2.1.1 (x32 Version: 2.1.1)
JDownloader 0.9 (x32 Version: 0.9)
JMicron JMB36X Driver (x32 Version: 1.17.58.2)
Karnaugh Minimizer 2.0 (x32 Version: 2.0)
marvell 91xx driver (x32 Version: 1.0.0.1051)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30320)
Microsoft Access MUI (German) 2013 (Version: 15.0.4420.1017)
Microsoft Antimalware Service DE-DE Language Pack (Version: 3.0.8402.2)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft DCF MUI (German) 2013 (Version: 15.0.4420.1017)
Microsoft Excel MUI (German) 2013 (Version: 15.0.4420.1017)
Microsoft Games for Windows - LIVE Redistributable (x32 Version: 3.5.88.0)
Microsoft Games for Windows Marketplace (x32 Version: 3.5.50.0)
Microsoft Groove MUI (German) 2013 (Version: 15.0.4420.1017)
Microsoft InfoPath MUI (German) 2013 (Version: 15.0.4420.1017)
Microsoft Lync MUI (German) 2013 (Version: 15.0.4420.1017)
Microsoft Office 32-bit Components 2013 (Version: 15.0.4420.1017)
Microsoft Office Korrekturhilfen 2013 - Deutsch (Version: 15.0.4420.1017)
Microsoft Office OSM MUI (German) 2013 (Version: 15.0.4420.1017)
Microsoft Office OSM UX MUI (German) 2013 (Version: 15.0.4420.1017)
Microsoft Office Professional Plus 2013 (Version: 15.0.4420.1017)
Microsoft Office Proofing (German) 2013 (Version: 15.0.4420.1017)
Microsoft Office Proofing Tools 2013 - English (Version: 15.0.4420.1017)
Microsoft Office Proofing Tools 2013 - Italiano (Version: 15.0.4420.1017)
Microsoft Office Shared 32-bit MUI (German) 2013 (Version: 15.0.4420.1017)
Microsoft Office Shared MUI (German) 2013 (Version: 15.0.4420.1017)
Microsoft OneNote MUI (German) 2013 (Version: 15.0.4420.1017)
Microsoft Outlook MUI (German) 2013 (Version: 15.0.4420.1017)
Microsoft PowerPoint MUI (German) 2013 (Version: 15.0.4420.1017)
Microsoft Publisher MUI (German) 2013 (Version: 15.0.4420.1017)
Microsoft Security Client DE-DE Language Pack (Version: 2.1.1116.0)
Microsoft Silverlight (Version: 5.1.20913.0)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (x32 Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.50727.42)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (x32 Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (x32 Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219)
Microsoft Word MUI (German) 2013 (Version: 15.0.4420.1017)
Microsoft_VC80_CRT_x86 (x32 Version: 8.0.50727.4053)
Microsoft_VC90_CRT_x86 (x32 Version: 1.00.0000)
mIRC (x32 Version: 6.34)
MP3 Recorder for YouTube 1.0 Professional-E (x32)
MSVCRT (x32 Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (x32 Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (x32 Version: 4.20.9876.0)
MT66 Software Update (x32)
Need for Speed: Most Wanted (x32 Version: 1.0)
Nero 12 (Version: 12.0.02000)
Nero 12 (x32 Version: 12.0.02000)
Nero 12 (x32 Version: 12.5.01400)
Nero Audio Pack 1 (x32 Version: 11.0.11500.110.0)
Nero BackItUp (x32 Version: 12.5.7000)
Nero BackItUp Help (CHM) (x32 Version: 12.0.13000)
Nero Blu-ray Player (x32 Version: 12.0.20014)
Nero Blu-ray Player Help (CHM) (x32 Version: 12.0.9000)
Nero Burning ROM (x32 Version: 12.5.6000)
Nero Burning ROM Help (CHM) (x32 Version: 12.0.3000)
Nero ControlCenter (x32 Version: 11.0.15600)
Nero ControlCenter Help (CHM) (x32 Version: 12.0.12000)
Nero Core Components (x32 Version: 11.0.20900)
Nero Disc Menus Basic (x32 Version: 12.0.11500)
Nero Effects Basic (x32 Version: 12.0.11500)
Nero Express (x32 Version: 12.5.6000)
Nero Express Help (CHM) (x32 Version: 12.0.13000)
Nero Kwik Media (x32 Version: 1.18.20100)
Nero Kwik Media Help (CHM) (x32 Version: 12.0.12000)
Nero Kwik Themes Basic (x32 Version: 12.0.11500)
Nero PiP Effects Basic (x32 Version: 12.0.11500)
Nero Recode (x32 Version: 12.5.6000)
Nero Recode Help (CHM) (x32 Version: 12.0.12000)
Nero RescueAgent (x32 Version: 12.0.10002)
Nero RescueAgent Help (CHM) (x32 Version: 12.0.7000)
Nero SharedVideoCodecs (x32 Version: 1.0.12100.2.0)
Nero Update (x32 Version: 11.0.11800.31.0)
Nero Video (x32 Version: 12.5.4000)
Nero Video Help (CHM) (x32 Version: 12.0.12000)
neroxml (x32 Version: 1.0.0)
NNScript (HKCU Version: 4.22)
NVIDIA 3D Vision Controller Driver (x32 Version: 275.33)
NVIDIA 3D Vision Controller-Treiber 314.22 (Version: 314.22)
NVIDIA 3D Vision Treiber 314.22 (Version: 314.22)
NVIDIA Grafiktreiber 314.22 (Version: 314.22)
NVIDIA Install Application (Version: 2.1002.115.743)
NVIDIA PhysX (x32 Version: 9.12.1031)
NVIDIA PhysX-Systemsoftware 9.12.1031 (Version: 9.12.1031)
NVIDIA Stereoscopic 3D Driver (x32 Version: 7.17.13.1422)
NVIDIA Systemsteuerung 314.22 (Version: 314.22)
NVIDIA Update 1.12.12 (Version: 1.12.12)
NVIDIA Update Components (Version: 1.12.12)
OpenAL (x32)
Origin (x32 Version: 8.5.0.4554)
Outils de vérification linguistique 2013 de Microsoft Office*- Français (Version: 15.0.4420.1017)
PDF Settings CS6 (x32 Version: 11.0)
PokerStars (x32)
Prerequisite installer (x32 Version: 12.0.0003)
PS3 Media Server (x32 Version: 1.82.0)
QuickStores-Toolbar 1.1.0 (x32 Version: 1.1.0)
QuickTime (x32 Version: 7.71.80.42)
Rapture3D 2.4.9 Game (x32)
Razer Anansi (x32 Version: 1.06.00)
Realtek High Definition Audio Driver (x32 Version: 6.0.1.6363)
Renesas Electronics USB 3.0 Host Controller Driver (x32 Version: 2.0.32.0)
Rockstar Games Social Club (x32 Version: 1.0.9.5)
Samsung Kies (x32 Version: 2.5.0.12094_28)
SAMSUNG USB Driver for Mobile Phones (Version: 1.5.16.0)
Silicon Laboratories CP210x USB to UART Bridge (Driver Removal) (x32)
Silicon Laboratories CP210x VCP Drivers for Windows XP/2003 Server/Vista/7 (x32 Version: 6.4)
Skype™ 6.10 (x32 Version: 6.10.104)
Spotify (HKCU Version: 0.9.0.133.gd18ed589)
StarCraft II (x32 Version: 1.5.3.23260)
Steam (x32 Version: 1.0.0.0)
System Requirements Lab for Intel (x32 Version: 4.4.24.0)
Target 3001! V16 distrelec700 (x32 Version: )
TeamViewer 8 (x32 Version: 8.0.22298)
Tomb Raider (x32)
TuneUp Utilities Language Pack (de-DE) (x32 Version: 12.0.3010.1)
Ubisoft Game Launcher (x32 Version: 1.0.0.0)
UltraISO Premium V9.53 (x32)
Unlocker 1.9.1-x64 (Version: 1.9.1)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3) (x32 Version: 3)
Update for Microsoft Access 2013 (KB2768008) 64-Bit Edition
Update for Microsoft InfoPath 2013 (KB2752078) 64-Bit Edition
Update for Microsoft Lync 2013 (KB2817621) 64-Bit Edition
Update for Microsoft Office 2013 (KB2726954) 64-Bit Edition
Update for Microsoft Office 2013 (KB2726996) 64-Bit Edition
Update for Microsoft Office 2013 (KB2737954) 64-Bit Edition
Update for Microsoft Office 2013 (KB2738038) 64-Bit Edition
Update for Microsoft Office 2013 (KB2760224) 64-Bit Edition
Update for Microsoft Office 2013 (KB2760242) 64-Bit Edition
Update for Microsoft Office 2013 (KB2760257) 64-Bit Edition
Update for Microsoft Office 2013 (KB2760267) 64-Bit Edition
Update for Microsoft Office 2013 (KB2760539) 64-Bit Edition
Update for Microsoft Office 2013 (KB2760553) 64-Bit Edition
Update for Microsoft Office 2013 (KB2760610) 64-Bit Edition
Update for Microsoft Office 2013 (KB2767845) 64-Bit Edition
Update for Microsoft Office 2013 (KB2768016) 64-Bit Edition
Update for Microsoft Office 2013 (KB2817309) 64-Bit Edition
Update for Microsoft Office 2013 (KB2817311) 64-Bit Edition
Update for Microsoft Office 2013 (KB2817314) 64-Bit Edition
Update for Microsoft Office 2013 (KB2817316) 64-Bit Edition
Update for Microsoft Office 2013 (KB2817490) 64-Bit Edition
Update for Microsoft Office 2013 (KB2817493) 64-Bit Edition
Update for Microsoft Office 2013 (KB2817626) 64-Bit Edition
Update for Microsoft Office 2013 (KB2817640) 64-Bit Edition
Update for Microsoft Office 2013 (KB2827225) 64-Bit Edition
Update for Microsoft Office 2013 (KB2827228) 64-Bit Edition
Update for Microsoft Office 2013 (KB2827230) 64-Bit Edition
Update for Microsoft Office 2013 (KB2827235) 64-Bit Edition
Update for Microsoft OneNote 2013 (KB2810016) 64-Bit Edition
Update for Microsoft Outlook 2013 (KB2825632) 64-Bit Edition
Update for Microsoft PowerPoint 2013 (KB2726947) 64-Bit Edition
Update for Microsoft PowerPoint 2013 (KB2817625) 64-Bit Edition
Update for Microsoft Project 2013 (KB2767859) 64-Bit Edition
Update for Microsoft Publisher 2013 (KB2752097) 64-Bit Edition
Update for Microsoft SkyDrive Pro (KB2825633) 64-Bit Edition
Update for Microsoft Visio 2013 (KB2752018) 64-Bit Edition
Update for Microsoft Visio Viewer 2013 (KB2768338) 64-Bit Edition
Update for Microsoft Word 2013 (KB2817631) 64-Bit Edition
Update for Microsoft Word 2013 (KB2827218) 64-Bit Edition
VirtualCloneDrive (x32)
VLC media player 2.0.8 (x32 Version: 2.0.8)
Welcome App (Start-up experience) (x32 Version: 12.0.15000)
Windows Live Communications Platform (x32 Version: 15.4.3502.0922)
Windows Live Essentials (x32 Version: 15.4.3502.0922)
Windows Live Essentials (x32 Version: 15.4.3555.0308)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (x32 Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3555.0308)
Windows Live Messenger (x32 Version: 15.4.3538.0513)
Windows Live Photo Common (x32 Version: 15.4.3502.0922)
Windows Live PIMT Platform (x32 Version: 15.4.3508.1109)
Windows Live SOXE (x32 Version: 15.4.3502.0922)
Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922)
Windows Live UX Platform (x32 Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109)
WinRAR 4.01 (64-Bit) (Version: 4.01.0)
XCOM - Enemy Unknown (x32)

==================== Restore Points  =========================

07-11-2013 19:56:57 Geplanter Prüfpunkt
08-11-2013 15:57:15 Windows Update

==================== Hosts content: ==========================

2009-07-14 03:34 - 2013-05-30 16:22 - 00001635 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 activate.adobe.com
127.0.0.1 practivate.adobe.com
127.0.0.1 ereg.adobe.com
127.0.0.1 activate.wip3.adobe.com
127.0.0.1 wip3.adobe.com
127.0.0.1 3dns-3.adobe.com
127.0.0.1 3dns-2.adobe.com
127.0.0.1 adobe-dns.adobe.com
127.0.0.1 adobe-dns-2.adobe.com
127.0.0.1 adobe-dns-3.adobe.com
127.0.0.1 ereg.wip3.adobe.com
127.0.0.1 activate-sea.adobe.com
127.0.0.1 wwis-dubc1-vip60.adobe.com
127.0.0.1 activate-sjc0.adobe.com
127.0.0.1 adobe.activate.com
127.0.0.1 hl2rcv.adobe.com
127.0.0.1 209.34.83.73:443
127.0.0.1 209.34.83.73:43
127.0.0.1 209.34.83.73
127.0.0.1 209.34.83.67:443
127.0.0.1 209.34.83.67:43
127.0.0.1 209.34.83.67
127.0.0.1 ood.opsource.net
127.0.0.1 CRL.VERISIGN.NET
127.0.0.1 199.7.52.190:80
127.0.0.1 lmlicenses.wip4.adobe.com
127.0.0.1 lm.licenses.adobe.com


==================== Scheduled Tasks (whitelisted) =============

Task: {08B7E6E5-C5AA-4EDB-BA1A-08B54C97209E} - System32\Tasks\ASUS\ASUS AI Suite II Execute => C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe [2012-03-13] (ASUSTeK Computer Inc.)
Task: {16A8BD00-8A61-4BB8-945C-A6D751C152AF} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1059843508-2583915627-1179725745-1000Core => C:\Users\Benni\AppData\Local\Google\Update\GoogleUpdate.exe [2011-06-08] (Google Inc.)
Task: {17202883-6E50-4993-BAD0-2F4E6BC729F0} - System32\Tasks\{AE9F4BB3-E496-41C5-8633-538505636A23} => C:\cmospwd\CTBIOS.EXE
Task: {26FA8F14-DB0A-44CE-9948-D81F42DF5561} - System32\Tasks\Microsoft\Windows Defender\MP Scheduled Scan => C:\Program Files\Windows Defender\MpCmdRun.exe [2009-07-14] ()
Task: {2E391007-4091-4156-A2DC-BE10E6BA849A} - System32\Tasks\SidebarExecute => C:\Program Files (x86)\Windows Sidebar\sidebar.exe [2010-11-20] (Microsoft Corporation)
Task: {3155E7E4-283E-489D-AB70-C2A46CEAB384} - System32\Tasks\ASUS\Easy Update => C:\Program Files (x86)\ASUS\AI Suite II\EasyUpdate\EzUpdt.exe [2012-10-08] ()
Task: {37683AC5-ADD4-496C-BB8B-2963B34A26A6} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1059843508-2583915627-1179725745-1000UA => C:\Users\Benni\AppData\Local\Google\Update\GoogleUpdate.exe [2011-06-08] (Google Inc.)
Task: {3A991EA9-0574-4F7C-8F5A-47DA99CCD0B6} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-10-24] (Google Inc.)
Task: {4B093FE1-D35F-4A02-8187-91F3AAC3D890} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2012-10-01] (Microsoft Corporation)
Task: {6CCFF6BB-C075-4EEC-9FC9-AAA6182D7F27} - System32\Tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask => Sc.exe start osppsvc
Task: {6DD5D055-907A-4129-AD79-AA7AEB5C58FC} - System32\Tasks\AutoKMS => C:\Windows\AutoKMS\AutoKMS.exe
Task: {76F7491E-2D95-4C72-BB88-88481F79AD06} - System32\Tasks\Auto Re-Aktivierung => C:\Windows\Re-Aktivierung\TriggerKMS.exe [2013-01-22] ()
Task: {8DEAD469-94CC-4661-A495-92C4C4FED8BE} - System32\Tasks\{78C6CD07-8E4B-4561-84AD-EA72603F1C06} => C:\Users\Benni\Downloads\cmos_ASUS\cmos.exe
Task: {C189C362-6D5F-431F-8850-B7AE1DE3A3CA} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-10-24] (Google Inc.)
Task: {C392FE4B-345E-4ED9-A560-C57E0CB6F127} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-10-09] (Adobe Systems Incorporated)
Task: {C3B08D98-2B15-4622-B7F2-959B4385BF98} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2012-10-01] (Microsoft Corporation)
Task: {C7A44D6F-6ED0-492F-A1A7-1B96A7351112} - System32\Tasks\{7FA2520F-100E-4550-8E18-01D4073DFAD2} => Chrome.exe hxxp://ui.skype.com/ui/0/6.3.73.105.457/de/abandoninstall?page=tsWLM
Task: {CA8857CA-4685-4177-A146-86EAD7C4D043} - System32\Tasks\MT66 Software Update => C:\Program Files (x86)\Common Files\MT66 Software Update\UpdateClient.exe [2009-11-18] (MedienTeam66)
Task: {DFFACAF1-0439-45DD-BC0C-673B7411DB71} - System32\Tasks\{26BC8BD5-D4C4-4BA8-94F7-7748C6528133} => C:\Users\Benni\Downloads\cmos_ASUS\cmos.exe
Task: {E423B33A-D1CD-4091-BAA4-5C248D7E33F3} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\OFFICE15\OLicenseHeartbeat.exe [2012-10-01] (Microsoft Corporation)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1059843508-2583915627-1179725745-1000Core.job => C:\Users\Benni\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1059843508-2583915627-1179725745-1000UA.job => C:\Users\Benni\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\MT66 Software Update.job => C:\Program Files (x86)\Common Files\MT66 Software Update\UpdateClient.exe

==================== Loaded Modules (whitelisted) =============

2010-01-02 15:42 - 2010-01-02 15:42 - 00098304 _____ () C:\Program Files (x86)\FileZilla FTP Client\fzshellext_64.dll
2013-10-11 12:08 - 2013-09-08 03:27 - 00327168 _____ () C:\Windows\system32\MSWSOCK.dll
2011-12-16 18:22 - 2011-05-23 10:16 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2013-10-11 12:08 - 2013-09-08 03:27 - 00327168 _____ () C:\Windows\system32\mswsock.dll
2013-05-11 11:38 - 2013-05-11 11:38 - 00131072 _____ () C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Locale\de_de\PDFMaker\PDFMOutlookAddin.DEU
2013-05-11 11:37 - 2013-05-11 11:37 - 04891368 _____ () C:\Program Files (x86)\Adobe\Acrobat 11.0\PDFMaker\Common\X64\AdobePDFMakerX.dll
2013-05-11 11:38 - 2013-05-11 11:38 - 01446912 _____ () C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Locale\de_DE\PDFMaker\AdobePDFMakerX.DEU
2013-07-19 11:55 - 2013-07-19 11:55 - 01421480 _____ () C:\Program Files\Microsoft Office\Office15\ADDINS\UmOutlookAddin.dll
2012-12-13 16:20 - 2012-09-19 18:17 - 00397088 _____ () C:\Program Files (x86)\Avira\AntiVir Desktop\sqlite3.dll
2012-12-25 23:25 - 2013-11-12 16:48 - 00026624 _____ () C:\Program Files (x86)\ASUS\AXSP\1.00.19\PEbiosinterface32.dll
2012-12-25 23:25 - 2012-10-12 16:58 - 00104448 _____ () C:\Program Files (x86)\ASUS\AXSP\1.00.19\ATKEX.dll
2012-12-25 23:27 - 2012-09-19 15:38 - 05012856 _____ () C:\Program Files (x86)\ASUS\AI Suite II\EasyUpdate\EzULIB.dll
2012-12-25 23:27 - 2010-06-21 15:21 - 00208896 _____ () C:\Program Files (x86)\ASUS\AI Suite II\EasyUpdate\ImageHelper.dll
2012-12-25 23:26 - 2011-07-12 19:14 - 00147456 _____ () C:\Program Files (x86)\ASUS\AI Suite II\AssistFunc.dll
2012-12-25 23:26 - 2010-10-05 08:22 - 00253952 _____ () C:\Program Files (x86)\ASUS\AI Suite II\pngio.dll
2012-12-25 23:27 - 2012-03-21 12:07 - 00972288 _____ () C:\Program Files (x86)\ASUS\AI Suite II\BarGadget\BarGadget.dll
2012-12-25 23:27 - 2012-08-01 10:51 - 01040896 _____ () C:\Program Files (x86)\ASUS\AI Suite II\EasyUpdate\EasyUpdt.dll
2012-12-25 23:27 - 2012-05-25 10:33 - 00883712 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Sensor\Sensor.dll
2012-12-25 23:26 - 2012-05-28 21:27 - 01622528 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Sensor Graph\SensorGraph.dll
2012-12-25 23:27 - 2011-09-19 20:18 - 01243136 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Settings\Settings.dll
2012-12-25 23:26 - 2011-07-21 09:06 - 00846848 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Splitter\Splitter.dll
2012-12-25 23:26 - 2011-10-14 20:03 - 00885248 _____ () C:\Program Files (x86)\ASUS\AI Suite II\TabGadget\TabGadget.dll
2012-12-25 23:26 - 2010-10-05 08:22 - 00208896 _____ () C:\Program Files (x86)\ASUS\AI Suite II\ImageHelper.dll
2012-12-25 23:26 - 2009-08-12 20:15 - 00253952 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Sensor\AlertHelper\pngio.dll
2013-08-21 01:58 - 2013-08-21 01:58 - 00012520 _____ () C:\Users\Benni\AppData\Local\Microsoft\Windows Sidebar\Gadgets\All_CPU_Meter_V4.7.3.gadget\CoreTempReader.dll
2013-08-21 01:58 - 2013-08-21 01:58 - 00015080 _____ () C:\Users\Benni\AppData\Local\Microsoft\Windows Sidebar\Gadgets\All_CPU_Meter_V4.7.3.gadget\GetCoreTempInfoNET.dll
2013-08-21 01:58 - 2013-08-21 01:58 - 00014056 _____ () C:\Users\Benni\AppData\Local\Microsoft\Windows Sidebar\Gadgets\All_CPU_Meter_V4.7.3.gadget\SystemInfo.dll
2012-12-13 16:20 - 2012-09-19 18:17 - 00397088 _____ () c:\program files (x86)\avira\antivir desktop\sqlite3.dll
2013-08-07 20:25 - 2013-08-07 20:25 - 00093696 _____ () C:\Program Files (x86)\FileZilla FTP Client\fzshellext.dll
2013-10-17 20:03 - 2013-10-09 01:01 - 00698832 _____ () C:\Users\Benni\AppData\Local\Google\Chrome\Application\30.0.1599.101\libglesv2.dll
2013-10-17 20:03 - 2013-10-09 01:01 - 00099792 _____ () C:\Users\Benni\AppData\Local\Google\Chrome\Application\30.0.1599.101\libegl.dll
2013-10-17 20:03 - 2013-10-09 01:02 - 04055504 _____ () C:\Users\Benni\AppData\Local\Google\Chrome\Application\30.0.1599.101\pdf.dll
2013-10-17 20:03 - 2013-10-09 01:02 - 00415184 _____ () C:\Users\Benni\AppData\Local\Google\Chrome\Application\30.0.1599.101\ppGoogleNaClPluginChrome.dll
2013-10-17 20:03 - 2013-10-09 01:01 - 01604560 _____ () C:\Users\Benni\AppData\Local\Google\Chrome\Application\30.0.1599.101\ffmpegsumo.dll
2013-10-17 20:03 - 2013-10-09 01:02 - 13584336 _____ () C:\Users\Benni\AppData\Local\Google\Chrome\Application\30.0.1599.101\PepperFlash\pepflashplayer.dll

==================== Alternate Data Streams (whitelisted) =========

AlternateDataStreams: C:\ProgramData\TEMP:9FA1200D

==================== Safe Mode (whitelisted) ===================


==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (11/12/2013 04:31:23 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: explorer.exe, Version: 6.1.7601.17567, Zeitstempel: 0x4d672ee4
Name des fehlerhaften Moduls: ntdll.dll, Version: 6.1.7601.18247, Zeitstempel: 0x521eaf24
Ausnahmecode: 0xc00000fd
Fehleroffset: 0x000000000005501f
ID des fehlerhaften Prozesses: 0xd54
Startzeit der fehlerhaften Anwendung: 0xexplorer.exe0
Pfad der fehlerhaften Anwendung: explorer.exe1
Pfad des fehlerhaften Moduls: explorer.exe2
Berichtskennung: explorer.exe3

Error: (11/12/2013 04:25:07 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: Explorer.EXE, Version: 6.1.7601.17567, Zeitstempel: 0x4d672ee4
Name des fehlerhaften Moduls: ntdll.dll, Version: 6.1.7601.18247, Zeitstempel: 0x521eaf24
Ausnahmecode: 0xc00000fd
Fehleroffset: 0x000000000005501f
ID des fehlerhaften Prozesses: 0x858
Startzeit der fehlerhaften Anwendung: 0xExplorer.EXE0
Pfad der fehlerhaften Anwendung: Explorer.EXE1
Pfad des fehlerhaften Moduls: Explorer.EXE2
Berichtskennung: Explorer.EXE3

Error: (11/12/2013 04:24:41 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: Explorer.EXE, Version: 6.1.7601.17567, Zeitstempel: 0x4d672ee4
Name des fehlerhaften Moduls: ntdll.dll, Version: 6.1.7601.18247, Zeitstempel: 0x521eaf24
Ausnahmecode: 0xc00000fd
Fehleroffset: 0x0000000000054eea
ID des fehlerhaften Prozesses: 0x8bc
Startzeit der fehlerhaften Anwendung: 0xExplorer.EXE0
Pfad der fehlerhaften Anwendung: Explorer.EXE1
Pfad des fehlerhaften Moduls: Explorer.EXE2
Berichtskennung: Explorer.EXE3

Error: (11/12/2013 03:51:20 PM) (Source: Application Error) (User: )
Description: Aus einem der folgenden Gründe kann nicht auf die Datei "" zugegriffen werden:
Es besteht ein Problem mit der Netzwerkverbindung, dem Datenträger mit der gespeicherten Datei bzw. den auf dem Computer installierten
Speichertreibern, oder der Datenträger fehlt.
Das Programm DownBook.exe wurde wegen dieses Fehlers geschlossen.

Programm: DownBook.exe
Datei: 

Der Fehlerwert ist im Abschnitt "Zusätzliche Dateien" aufgelistet.
Benutzeraktion
1. Öffnen Sie die Datei erneut.
Diese Situation ist eventuell ein temporäres Problem, das selbstständig behoben wird, wenn das Programm erneut ausgeführt wird.
2.
Wenn Sie weiterhin nicht auf die Datei zugreifen können und
	- diese sich im Netzwerk befindet, 
dann sollte der Netzwerkadministrator überprüfen, dass kein Netzwerkproblem besteht und dass eine Verbindung mit dem Server hergestellt werden kann.
	- diese sich auf einem Wechseldatenträger, wie z. B. einer Diskette oder einer CD, befindet, überprüfen Sie, ob der Datenträger richtig in den Computer eingelegt ist.
3. Überprüfen und reparieren Sie das Dateisystem, indem Sie CHKDSK ausführen. Klicken Sie dazu im Menü "Start" auf "Ausführen", geben Sie CMD ein, und klicken Sie auf "OK". Geben Sie an der Eingabeaufforderung CHKDSK /F ein, und drücken Sie die EINGABETASTE.
4. Stellen Sie die Datei von einer Sicherungskopie wieder her, wenn das Problem weiterhin besteht.
5. Überprüfen Sie, ob andere Dateien auf demselben Datenträger geöffnet werden können. Falls dies nicht möglich ist, ist der Datenträger eventuell beschädigt. 
Wenden Sie sich an den Administrator oder den Hersteller der Computerhardware, um weitere Unterstützung zu erhalten, wenn es sich um eine Festplatte handelt.

Zusätzliche Daten
Fehlerwert: 00000000
Datenträgertyp: 0

Error: (11/12/2013 03:51:20 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: DownBook.exe, Version: 0.0.0.0, Zeitstempel: 0x528074f4
Name des fehlerhaften Moduls: DownBook.exe, Version: 0.0.0.0, Zeitstempel: 0x528074f4
Ausnahmecode: 0xc000001d
Fehleroffset: 0x00046e89
ID des fehlerhaften Prozesses: 0xdd8
Startzeit der fehlerhaften Anwendung: 0xDownBook.exe0
Pfad der fehlerhaften Anwendung: DownBook.exe1
Pfad des fehlerhaften Moduls: DownBook.exe2
Berichtskennung: DownBook.exe3

Error: (11/11/2013 07:36:33 AM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: Explorer.EXE, Version: 6.1.7601.17567, Zeitstempel: 0x4d672ee4
Name des fehlerhaften Moduls: ntdll.dll, Version: 6.1.7601.18247, Zeitstempel: 0x521eaf24
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0000000000053290
ID des fehlerhaften Prozesses: 0xeec
Startzeit der fehlerhaften Anwendung: 0xExplorer.EXE0
Pfad der fehlerhaften Anwendung: Explorer.EXE1
Pfad des fehlerhaften Moduls: Explorer.EXE2
Berichtskennung: Explorer.EXE3

Error: (11/08/2013 09:12:07 PM) (Source: Application Hang) (User: )
Description: Programm Explorer.EXE, Version 6.1.7601.17567 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: dd8

Startzeit: 01cedcb5ae8b8af2

Endzeit: 0

Anwendungspfad: C:\Windows\Explorer.EXE

Berichts-ID:

Error: (11/07/2013 05:17:53 PM) (Source: Application Hang) (User: )
Description: Programm wmplayer.exe, Version 12.0.7601.17514 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 17bc

Startzeit: 01cedbd4bc3f358b

Endzeit: 48

Anwendungspfad: C:\Program Files (x86)\Windows Media Player\wmplayer.exe

Berichts-ID: 25679564-47c8-11e3-87db-5404a63cde5d

Error: (11/07/2013 04:42:27 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: EzUpdt.exe, Version: 0.0.0.0, Zeitstempel: 0x00000000
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0xf1eef1ee
ID des fehlerhaften Prozesses: 0xef4
Startzeit der fehlerhaften Anwendung: 0xEzUpdt.exe0
Pfad der fehlerhaften Anwendung: EzUpdt.exe1
Pfad des fehlerhaften Moduls: EzUpdt.exe2
Berichtskennung: EzUpdt.exe3

Error: (09/29/2013 04:35:11 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: dreamweaver.exe, Version: 12.0.0.5808, Zeitstempel: 0x4f7617ae
Name des fehlerhaften Moduls: dreamweaver.exe, Version: 12.0.0.5808, Zeitstempel: 0x4f7617ae
Ausnahmecode: 0xc0000005
Fehleroffset: 0x009ac20a
ID des fehlerhaften Prozesses: 0x71c
Startzeit der fehlerhaften Anwendung: 0xdreamweaver.exe0
Pfad der fehlerhaften Anwendung: dreamweaver.exe1
Pfad des fehlerhaften Moduls: dreamweaver.exe2
Berichtskennung: dreamweaver.exe3


System errors:
=============
Error: (11/12/2013 04:49:31 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Heimnetzgruppen-Anbieter" ist vom Dienst "Funktionssuche-Ressourcenveröffentlichung" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: 
%%-2147024891

Error: (11/12/2013 04:49:31 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Funktionssuche-Ressourcenveröffentlichung" wurde mit folgendem Fehler beendet: 
%%-2147024891

Error: (11/12/2013 04:48:16 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Computerbrowser" wurde mit folgendem Fehler beendet: 
%%1060

Error: (11/12/2013 04:48:14 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "IKE- und AuthIP IPsec-Schlüsselerstellungsmodule" ist von folgendem Dienst abhängig: BFE. Dieser Dienst ist eventuell nicht installiert.

Error: (11/12/2013 04:48:13 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Funktionssuche-Ressourcenveröffentlichung" wurde mit folgendem Fehler beendet: 
%%-2147024891

Error: (11/12/2013 04:46:29 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Netzwerklistendienst" ist vom Dienst "NLA (Network Location Awareness)" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: 
%%1068

Error: (11/12/2013 04:46:29 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Netzwerklistendienst" ist vom Dienst "NLA (Network Location Awareness)" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: 
%%1068

Error: (11/12/2013 04:46:28 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Netzwerklistendienst" ist vom Dienst "NLA (Network Location Awareness)" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: 
%%1068

Error: (11/12/2013 04:46:28 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Netzwerklistendienst" ist vom Dienst "NLA (Network Location Awareness)" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: 
%%1068

Error: (11/12/2013 04:46:28 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Netzwerklistendienst" ist vom Dienst "NLA (Network Location Awareness)" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: 
%%1068


Microsoft Office Sessions:
=========================
Error: (11/12/2013 04:31:23 PM) (Source: Application Error)(User: )
Description: explorer.exe6.1.7601.175674d672ee4ntdll.dll6.1.7601.18247521eaf24c00000fd000000000005501fd5401cedfbb5f8508e9C:\Windows\explorer.exeC:\Windows\SYSTEM32\ntdll.dll7c1b6ed6-4baf-11e3-873d-5404a63cde5d

Error: (11/12/2013 04:25:07 PM) (Source: Application Error)(User: )
Description: Explorer.EXE6.1.7601.175674d672ee4ntdll.dll6.1.7601.18247521eaf24c00000fd000000000005501f85801cedfbb52d4dcf9C:\Windows\Explorer.EXEC:\Windows\SYSTEM32\ntdll.dll9c32f467-4bae-11e3-873d-5404a63cde5d

Error: (11/12/2013 04:24:41 PM) (Source: Application Error)(User: )
Description: Explorer.EXE6.1.7601.175674d672ee4ntdll.dll6.1.7601.18247521eaf24c00000fd0000000000054eea8bc01cedfb5c2313073C:\Windows\Explorer.EXEC:\Windows\SYSTEM32\ntdll.dll8c8534b2-4bae-11e3-873d-5404a63cde5d

Error: (11/12/2013 03:51:20 PM) (Source: Application Error)(User: )
Description: DownBook.exe000000000

Error: (11/12/2013 03:51:20 PM) (Source: Application Error)(User: )
Description: DownBook.exe0.0.0.0528074f4DownBook.exe0.0.0.0528074f4c000001d00046e89dd801cedfb5c5e6f580C:\Users\Benni\AppData\Local\DownBook\DownBook.exeC:\Users\Benni\AppData\Local\DownBook\DownBook.exee3cef821-4ba9-11e3-873d-5404a63cde5d

Error: (11/11/2013 07:36:33 AM) (Source: Application Error)(User: )
Description: Explorer.EXE6.1.7601.175674d672ee4ntdll.dll6.1.7601.18247521eaf24c00000050000000000053290eec01cede4fe770fa5dC:\Windows\Explorer.EXEC:\Windows\SYSTEM32\ntdll.dll9a7e146e-4a9b-11e3-884d-5404a63cde5d

Error: (11/08/2013 09:12:07 PM) (Source: Application Hang)(User: )
Description: Explorer.EXE6.1.7601.17567dd801cedcb5ae8b8af20C:\Windows\Explorer.EXE

Error: (11/07/2013 05:17:53 PM) (Source: Application Hang)(User: )
Description: wmplayer.exe12.0.7601.1751417bc01cedbd4bc3f358b48C:\Program Files (x86)\Windows Media Player\wmplayer.exe25679564-47c8-11e3-87db-5404a63cde5d

Error: (11/07/2013 04:42:27 PM) (Source: Application Error)(User: )
Description: EzUpdt.exe0.0.0.000000000unknown0.0.0.000000000c0000005f1eef1eeef401cedbc9b5f30bb6C:\Program Files (x86)\ASUS\AI Suite II\EasyUpdate\EzUpdt.exeunknown33b9897e-47c3-11e3-87db-5404a63cde5d

Error: (09/29/2013 04:35:11 PM) (Source: Application Error)(User: )
Description: dreamweaver.exe12.0.0.58084f7617aedreamweaver.exe12.0.0.58084f7617aec0000005009ac20a71c01cebd291b1492aaC:\Program Files (x86)\Adobe\Adobe Dreamweaver CS6\dreamweaver.exeC:\Program Files (x86)\Adobe\Adobe Dreamweaver CS6\dreamweaver.exeb9bd68cf-291c-11e3-8d64-5404a63cde5d


==================== Memory info =========================== 

Percentage of memory in use: 29%
Total physical RAM: 8089.13 MB
Available physical RAM: 5713.3 MB
Total Pagefile: 16176.45 MB
Available Pagefile: 13287.75 MB
Total Virtual: 8192 MB
Available Virtual: 8191.8 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:931.51 GB) (Free:703.27 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive e: (Musik und Filme) (Fixed) (Total:186.31 GB) (Free:88.07 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 932 GB) (Disk ID: E9D2E9D2)
Partition 1: (Active) - (Size=932 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 186 GB) (Disk ID: 40CD40CC)
Partition 1: (Not Active) - (Size=186 GB) - (Type=42)

==================== End Of Log ============================
         

Alt 12.11.2013, 17:51   #2
aharonov
/// TB-Ausbilder
 
TR/ATRAPS.Gen2 C:\Program Files (x86)\Google\Desktop - Standard

TR/ATRAPS.Gen2 C:\Program Files (x86)\Google\Desktop



Hi,

Ich hab bei der ersten schnelle Durchsicht der Logs gesehen, dass du unsaubere Software nutzt. Das unterstützen wir nicht: http://www.trojaner-board.de/95394-c...-software.html

Wenn ich dir helfen soll, dann deinstalliere und entferne jetzt zuerst restlos alle illegale Software (Cracks, Keygens, etc.). Sobald alles weg ist, können wir loslegen. Sollte ich im weiteren Verlauf aber trotz dieser Warnung nochmals sowas sehen, ist Schluss.

Gib mir Bescheid, sobald es hier weiter geht.
__________________

__________________

Alt 07.01.2014, 15:02   #3
aharonov
/// TB-Ausbilder
 
TR/ATRAPS.Gen2 C:\Program Files (x86)\Google\Desktop - Standard

TR/ATRAPS.Gen2 C:\Program Files (x86)\Google\Desktop



Fehlende Rückmeldung
Dieses Thema wurde aus meinen Abos gelöscht. Somit bekomme ich keine Benachrichtigung mehr über neue Antworten.
Schreib mir eine PM, falls du das Thema doch wieder fortsetzen möchtest. Dann machen wir hier weiter.


Jeder andere bitte diese Anleitung lesen und einen eigenen Thread erstellen.
__________________
__________________

Antwort

Themen zu TR/ATRAPS.Gen2 C:\Program Files (x86)\Google\Desktop
antivirus, autokms, avira, browser, computer, cpu-z, desktop, error, excel, farbar, farbar recovery scan tool, festplatte, flash player, google, helper, hijack, homepage, mozilla, mp3, nicht möglich, ntdll.dll, office 2013, outlook 2013, plug-in, problem, realtek, registry, rootkit, scan, security, software, svchost.exe, system, trojaner, word 2013



Ähnliche Themen: TR/ATRAPS.Gen2 C:\Program Files (x86)\Google\Desktop


  1. Trojan.FakeAlert in C:\Program Files (x86)\OpenOffice 4 \program\calc.dll
    Plagegeister aller Art und deren Bekämpfung - 22.04.2014 (5)
  2. atraps.gen2 in C:\Google]\Desktop...
    Plagegeister aller Art und deren Bekämpfung - 08.11.2013 (9)
  3. TR/ATRAPS.Gen/Gen2 in Google\Desktop\Install\ von Avira gefunden
    Plagegeister aller Art und deren Bekämpfung - 13.10.2013 (11)
  4. C:\Program Files (x86)\Electronic Arts\FIFA Manager 13\Manager13.exe' enthielt einen Virus oder unerwünschtes Programm 'TR/Crypt.XPACK.Gen2'
    Plagegeister aller Art und deren Bekämpfung - 24.08.2013 (3)
  5. Windows 7: C:\Program files\Desktop\Google\...usw-> TR/Sirefef.A.37 und TR/ATRAPS.Gen2, Antivir kann Sie nicht in die Quarantäne verschieben
    Plagegeister aller Art und deren Bekämpfung - 12.08.2013 (13)
  6. Windows 8 x64 - "TR/ATRAPS.Gen2" in C:\Program Files (x86)\Google\Desktop\...\80000032.@ und ...\80000064.@ und ...{80000000.@
    Log-Analyse und Auswertung - 10.08.2013 (5)
  7. TR/Crypt.ZPACK.Gen2 Virus in Program Files (x86)/Skype/Phone/Skype.exe
    Plagegeister aller Art und deren Bekämpfung - 10.03.2013 (1)
  8. TR/Crypt.XPACK.Gen2 in 'C:\Program Files (x86)\DVDVideoSoft\Free Studio\Free Disc Burner\FreeDiscBurner.exe' gefunden
    Log-Analyse und Auswertung - 25.02.2013 (11)
  9. Trojaner: tr/atraps.gen2, tr/atraps.gen, tr/atraps.gen3, tr/atraps.gen4, tr/atraps.gen5, tr/atraps.gen7 und services.exe virus
    Plagegeister aller Art und deren Bekämpfung - 11.01.2013 (29)
  10. Avira meldet: 'TR/Crypt.ZPACK.Gen2' [trojan] in der Datei 'C:\Program Files\Skype\Phone\Skype.exe'
    Plagegeister aller Art und deren Bekämpfung - 08.12.2012 (2)
  11. Ad-Aware erkennt: Win32.Trojan.Agent / c:\program files (x86)\avira\antivir desktop\failsafe\aeexp.dll
    Plagegeister aller Art und deren Bekämpfung - 21.10.2012 (6)
  12. Packer.ModifiedUPX in C:\Program Files\TopOCR\mb1.exe und Trojan.Zbot in F:\Eigene Datein\Desktop\PureRa.exe
    Log-Analyse und Auswertung - 03.10.2012 (31)
  13. TR/Crypt.ZPACK.Gen2 in C:\Program Files\Skype\Phone\Skype.exe
    Plagegeister aller Art und deren Bekämpfung - 27.07.2012 (2)
  14. O4 - HKLM..\Run: [SearchSettings] C:\Program Files\Common Files\Spigot\Search Settings\SearchSetting
    Mülltonne - 02.07.2012 (0)
  15. W32/PatchLaod.A TR/ATRAPS.Gen2 Umleitung von google.de-Ergebnissen
    Plagegeister aller Art und deren Bekämpfung - 04.01.2012 (18)
  16. TR/Crypt.XPACK.Gen2 in C:\Program Files\Microsoft Office\Office12\OART.DLL
    Plagegeister aller Art und deren Bekämpfung - 28.07.2011 (20)
  17. 'TR/ATRAPS.Gen' in 'C:\Program Files\T-Home\Kinderschutz-Software_2\KSService.exe'
    Plagegeister aller Art und deren Bekämpfung - 12.05.2010 (8)

Zum Thema TR/ATRAPS.Gen2 C:\Program Files (x86)\Google\Desktop - Bei mir meldet seit einem Tag mein Avira Free Antivirus folgenden Trojaner: TR/ATRAPS.Gen2 im Pfad: C:\Program Files (x86)\Google\Desktop\Install --- Folgende Möglichkeiten habe ich bereits probiert: 1. Im Sicherheitsmodus gebootet und - TR/ATRAPS.Gen2 C:\Program Files (x86)\Google\Desktop...
Archiv
Du betrachtest: TR/ATRAPS.Gen2 C:\Program Files (x86)\Google\Desktop auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.